[Owasp-cincinnati] ASP.NET POET Vulnerability

Marco M. Morana marco.m.morana at gmail.com
Tue Sep 21 18:31:21 EDT 2010


Notable comments: 

..What they could do is just to be able to decrypt/modify the cookies which
are protected by .NET framework

. no security threat to note unless you put sensitive data in cookies.

 

More info herein:

http://threatpost.com/en_us/blogs/new-crypto-attack-affects-millions-aspnet-
apps-091310

 

Regards

 

Marco Mirko Morana

OWASP Cincinnati USA Chapter Lead

Writing Secure Software Blogger

Application Threat Modeling Book Author

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-cincinnati/attachments/20100921/d34be260/attachment.html 


More information about the Owasp-cincinnati mailing list